AppVScripting.dll
Description: Microsoft Application Virtualization AppV Client Scripting
Authors: © Microsoft Corporation. All rights reserved.
Version: 10.0.19041.3996
Architecture: 64-bit
Operating System: Windows NT
SHA256: 7e0be2b931af6252998ce6ca9614bb3e
File Size: 358.9 KB
Uploaded At: Dec. 1, 2025, 7:22 a.m.
Views: 32
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: OpenProcess
Exported Functions
- Initialize (Ordinal: 1, Address: 0xd190)
- InitializeISV (Ordinal: 2, Address: 0xd1a0)
- Deinitialize (Ordinal: 3, Address: 0xd1b0)
- GetComponent (Ordinal: 4, Address: 0xd300)
Imported DLLs & Functions
ADVAPI32.dll
- ConvertSidToStringSidW (Address: 0x1800345b8)
- CreateProcessAsUserW (Address: 0x180034590)
- EventActivityIdControl (Address: 0x180034588)
- EventRegister (Address: 0x180034568)
- EventSetInformation (Address: 0x1800345d0)
- EventUnregister (Address: 0x180034560)
- EventWriteTransfer (Address: 0x180034580)
- GetTokenInformation (Address: 0x1800345b0)
- LookupAccountSidW (Address: 0x1800345c8)
- OpenProcessToken (Address: 0x1800345c0)
- OpenThreadToken (Address: 0x180034570)
- RegCloseKey (Address: 0x1800345a8)
- RegOpenKeyExW (Address: 0x1800345a0)
- RegQueryValueExW (Address: 0x180034598)
- SetThreadToken (Address: 0x180034578)
api-ms-win-crt-math-l1-1-0.dll
- ceilf (Address: 0x1800347c8)
api-ms-win-crt-private-l1-1-0.dll
- __C_specific_handler (Address: 0x180034878)
- __CxxFrameHandler3 (Address: 0x180034880)
- __CxxFrameHandler4 (Address: 0x1800348c0)
- __RTDynamicCast (Address: 0x1800348e0)
- __std_terminate (Address: 0x1800348b8)
- _CxxThrowException (Address: 0x180034888)
- _o___std_exception_copy (Address: 0x1800348a8)
- _o___std_exception_destroy (Address: 0x1800348a0)
- _o___std_type_info_destroy_list (Address: 0x180034898)
- _o___stdio_common_vswprintf_s (Address: 0x180034890)
- _o__callnewh (Address: 0x1800348d0)
- _o__cexit (Address: 0x1800348c8)
- _o__configure_narrow_argv (Address: 0x1800347d8)
- _o__crt_atexit (Address: 0x1800347e0)
- _o__execute_onexit_table (Address: 0x1800347e8)
- _o__initialize_narrow_environment (Address: 0x1800347f0)
- _o__initialize_onexit_table (Address: 0x1800347f8)
- _o__invalid_parameter_noinfo_noreturn (Address: 0x180034800)
- _o__purecall (Address: 0x180034808)
- _o__register_onexit_function (Address: 0x180034810)
- _o__seh_filter_dll (Address: 0x180034818)
- _o__stricmp (Address: 0x180034820)
- _o__wcsicmp (Address: 0x180034830)
- _o__wcsnicmp (Address: 0x180034838)
- _o__wtoi (Address: 0x180034840)
- _o_free (Address: 0x180034848)
- _o_iswdigit (Address: 0x180034850)
- _o_malloc (Address: 0x180034858)
- _o_realloc (Address: 0x180034860)
- _o_terminate (Address: 0x180034868)
- _o_wcscpy_s (Address: 0x180034870)
- memcmp (Address: 0x1800348e8)
- memcpy (Address: 0x1800348f0)
- memmove (Address: 0x180034828)
- strchr (Address: 0x1800348d8)
- strrchr (Address: 0x1800348b0)
api-ms-win-crt-runtime-l1-1-0.dll
- _initterm (Address: 0x180034900)
- _initterm_e (Address: 0x180034908)
api-ms-win-crt-string-l1-1-0.dll
- memset (Address: 0x180034918)
- wcsncmp (Address: 0x180034920)
KERNEL32.dll
- CloseHandle (Address: 0x1800346e8)
- CloseThreadpoolWait (Address: 0x1800346b8)
- CreateEventW (Address: 0x180034670)
- CreateProcessW (Address: 0x1800346a0)
- CreateThreadpoolWait (Address: 0x1800346b0)
- DeleteCriticalSection (Address: 0x1800346d0)
- DisableThreadLibraryCalls (Address: 0x180034720)
- EnterCriticalSection (Address: 0x180034710)
- GetComputerNameExW (Address: 0x180034738)
- GetCurrentProcess (Address: 0x180034718)
- GetCurrentProcessId (Address: 0x180034650)
- GetCurrentThread (Address: 0x1800346f0)
- GetCurrentThreadId (Address: 0x180034700)
- GetEnvironmentVariableW (Address: 0x1800345e0)
- GetExitCodeProcess (Address: 0x180034698)
- GetLastError (Address: 0x1800346f8)
- GetModuleHandleW (Address: 0x180034668)
- GetProcAddress (Address: 0x180034660)
- GetShortPathNameW (Address: 0x1800345e8)
- GetSystemTimeAsFileTime (Address: 0x180034648)
- InitializeCriticalSection (Address: 0x1800346d8)
- InitializeCriticalSectionAndSpinCount (Address: 0x180034690)
- InitializeSListHead (Address: 0x180034640)
- IsDebuggerPresent (Address: 0x180034620)
- IsProcessorFeaturePresent (Address: 0x180034740)
- LeaveCriticalSection (Address: 0x180034708)
- LocalFree (Address: 0x180034608)
- OpenProcess (Address: 0x1800345f0)
- QueryFullProcessImageNameW (Address: 0x180034728)
- QueryPerformanceCounter (Address: 0x180034658)
- RaiseException (Address: 0x1800346e0)
- ResetEvent (Address: 0x180034680)
- RtlCaptureContext (Address: 0x180034638)
- RtlLookupFunctionEntry (Address: 0x180034630)
- RtlVirtualUnwind (Address: 0x180034628)
- SetEvent (Address: 0x180034688)
- SetLastError (Address: 0x180034730)
- SetThreadpoolWait (Address: 0x1800346a8)
- SetUnhandledExceptionFilter (Address: 0x180034610)
- TerminateProcess (Address: 0x1800346c8)
- UnhandledExceptionFilter (Address: 0x180034618)
- WaitForSingleObject (Address: 0x1800346c0)
- WaitForSingleObjectEx (Address: 0x180034678)
- Wow64DisableWow64FsRedirection (Address: 0x180034600)
- Wow64RevertWow64FsRedirection (Address: 0x1800345f8)
msvcp_win.dll
- _Wcscoll (Address: 0x1800349a8)
- _Wcsxfrm (Address: 0x1800349e0)
- ?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ (Address: 0x180034a00)
- ?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z (Address: 0x1800349e8)
- ?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ (Address: 0x180034a18)
- ?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ (Address: 0x1800349c0)
- ?_Incref@facet@locale@std@@UEAAXXZ (Address: 0x180034a08)
- ?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z (Address: 0x1800349c8)
- ?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ (Address: 0x180034a78)
- ?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ (Address: 0x180034ab8)
- ?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ (Address: 0x180034a90)
- ?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ (Address: 0x180034a70)
- ?_Xbad_alloc@std@@YAXXZ (Address: 0x180034960)
- ?_Xbad_function_call@std@@YAXXZ (Address: 0x180034980)
- ?_Xlength_error@std@@YAXPEBD@Z (Address: 0x180034940)
- ?_Xout_of_range@std@@YAXPEBD@Z (Address: 0x180034978)
- ?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z (Address: 0x180034988)
- ??0_Locinfo@std@@QEAA@PEBD@Z (Address: 0x180034a28)
- ??0_Lockit@std@@QEAA@H@Z (Address: 0x1800349b8)
- ??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ (Address: 0x180034aa0)
- ??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z (Address: 0x180034938)
- ??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z (Address: 0x180034968)
- ??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ (Address: 0x180034ac0)
- ??0facet@locale@std@@IEAA@_K@Z (Address: 0x1800349f8)
- ??1_Locinfo@std@@QEAA@XZ (Address: 0x180034a20)
- ??1_Lockit@std@@QEAA@XZ (Address: 0x1800349b0)
- ??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ (Address: 0x180034a88)
- ??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ (Address: 0x180034a30)
- ??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ (Address: 0x180034970)
- ??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ (Address: 0x180034a80)
- ??1facet@locale@std@@MEAA@XZ (Address: 0x1800349f0)
- ??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@I@Z (Address: 0x180034958)
- ??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@J@Z (Address: 0x180034930)
- ??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@K@Z (Address: 0x180034950)
- ??Bid@locale@std@@QEAA_KXZ (Address: 0x180034a10)
- ?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ (Address: 0x180034ab0)
- ?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXH@Z (Address: 0x180034a98)
- ?id@?$collate@_W@std@@2V0locale@2@A (Address: 0x1800349d8)
- ?id@?$ctype@_W@std@@2V0locale@2@A (Address: 0x1800349d0)
- ?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z (Address: 0x180034a38)
- ?is@?$ctype@_W@std@@QEBA_NF_W@Z (Address: 0x1800349a0)
- ?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z (Address: 0x180034a48)
- ?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z (Address: 0x180034aa8)
- ?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ (Address: 0x180034a68)
- ?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z (Address: 0x180034ac8)
- ?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z (Address: 0x180034948)
- ?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ (Address: 0x180034a40)
- ?tolower@?$ctype@_W@std@@QEBA_W_W@Z (Address: 0x180034998)
- ?tolower@?$ctype@_W@std@@QEBAPEB_WPEA_WPEB_W@Z (Address: 0x180034990)
- ?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ (Address: 0x180034a60)
- ?uncaught_exception@std@@YA_NXZ (Address: 0x180034ad0)
- ?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z (Address: 0x180034a58)
- ?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z (Address: 0x180034a50)
NETAPI32.dll
- DsGetDcNameW (Address: 0x180034758)
- NetApiBufferFree (Address: 0x180034760)
- NetUserGetInfo (Address: 0x180034750)
ole32.dll
- CoCreateInstance (Address: 0x180034ae0)
- CoTaskMemFree (Address: 0x180034ae8)
Secur32.dll
- GetUserNameExW (Address: 0x180034790)
SHELL32.dll
- SHGetKnownFolderPath (Address: 0x180034770)
SHLWAPI.dll
- PathFileExistsW (Address: 0x180034780)
USERENV.dll
- CreateEnvironmentBlock (Address: 0x1800347a8)
- DestroyEnvironmentBlock (Address: 0x1800347a0)
- LoadUserProfileW (Address: 0x1800347b0)
- UnloadUserProfile (Address: 0x1800347b8)